QAT Logo

 Home > Past Issues > Security Update

QAT SECURITY UPDATE:
QAT Security Takes on Greater Value Through a New Features Set

Security is now exclusively defined for User Groups.

Benefits

  • Simplifies maintenance
  • Improves performance of the validation routines

Secured Data Values can be applied to User Groups.  Secured data values are custom security parameters defined by the administrator.  Previously, they were applied to Window functions only.  Examples of Secured Data Values are Role (Manager, Supervisor, etc.) or Purchase Limit ($10,000)

Benefits

  • Characteristics about a User Group can be used to authorize security
  • Moves the security logic from the developer’s code to the Security Application.  The developer does not need to understand the security rules.

Extended the Secured Data Value operations.  In the previous version, a Secured Data Element (Purchase Limit) was set equal to a specific value ($10,000).  We now support:

  • =      Equals
  • <>    Not equal
  • >      Greater Than
  • >=    Greater or equal than
  • <      Less than
  • <=    Less or equal than
  • Contains (text string)
  • Between (number or date range)
  • In a Group

New ways to validate with Secured Data – User Group Qualified Flag.  When a Secured Data Value is defined for a Window function, it can be qualified to require user validation.  In this case, the Window Function is associated with a User Group Secured Data Value.  There are 2 types of User Qualified validations.

  • Static Validation – The Window Function Secured Data value is compared against the User Group Profile for the current user to determine the security authorization.  For example, to approve a purchase order the current user must be a Manager.  The Window Function Secured Data element, Authorization = Manager is associated to a User Group Secured Data element, Role.  For security to be authorized in this case, the current user must belong to a User Group and have the Secured Data element Role = Manager.
  • Dynamic Validation – The Window Function Secured Data value is compared against a runtime value provided by the application that called AGS.  This value is then compared against the associated User Group Secured Data element.

Improved data validation routines.

  • All validations are run against a set of high performance, de-normalized tables.
  • The validation tables and administration tables are kept in-synch at all times.  No longer need to a separate load routine to update the validation tables.

For more information, please visit http://www.qat.com/qat_security.asp.

Read Past Issues of QAT Insights PAST ISSUES
- Archive
- Issue 016 | Vol. 3 | 2008
- Issue 015 | Vol. 3 | 2008
- Issue 014 | Vol. 3 | 2008
- Issue 013 | Vol. 2 | 2007
- Issue 012 | Vol. 2 | 2007
- Issue 011 | Vol. 2 | 2007
- Issue 010 | Vol. 2 | 2007

Manage QAT Insights Subscriptions MANAGE SUBSCRIPTIONS
- Subscribe
- Update Subscription
- Provide Feedback
- Opt Out
- Contact Us

Learn more about QA Technologies ABOUT QAT
- Company
- About Us
- Solutions
- Careers

 
  Newsletter Feedback | Privacy | Terms | Copyright                           Subscribe to our newsletters and alerts.   

  ©2007 QA Technologies, Inc. All Rights Reserved.  WEBMASTER           Get Adobe Acrobat Reader.